26 lines
1.5 KiB
Bash
26 lines
1.5 KiB
Bash
#!/bin/bash
|
|
echo "Don't run this unless you want new certs. Just use the ones already generated!"
|
|
exit
|
|
echo "This script removes all cert files in the directory."
|
|
echo "Continue? Press enter!"
|
|
read
|
|
rm *.srl *.key *.csr *.crt *.pem *.ext *.pfx > /dev/null
|
|
# Generate Root Certificate and Key
|
|
openssl req -newkey rsa:2048 -nodes -keyout root.key -x509 -days 3650 -out root.crt -subj "/C=JP/ST=A/L=A/CN=Taito Arcade Machine CA" \
|
|
-addext "subjectAltName = DNS:cert.nesys.jp,DNS:cert3.nesys.jp,DNS:data.nesys.jp,DNS:proxy.nesys.jp,DNS:nesys.taito.co.jp,DNS:fjm170920zero.nesica.net"
|
|
|
|
# pfx export
|
|
openssl pkcs12 -passout pass:harasho -export -in root.crt -inkey root.key -out root.pfx
|
|
|
|
# Generate Second Certificate and Key
|
|
openssl req -newkey rsa:2048 -nodes -keyout nesys.key -out nesys.crt -CA root.crt -CAkey root.key -subj "/C=JP/ST=A/L=A/CN=nesys" -addext "subjectAltName = DNS:cert.nesys.jp,DNS:cert3.nesys.jp,DNS:data.nesys.jp,DNS:proxy.nesys.jp,DNS:nesys.taito.co.jp,DNS:fjm170920zero.nesica.net" -days 3650
|
|
|
|
# pfx export
|
|
openssl pkcs12 -passout pass:harasho -export -in nesys.crt -inkey nesys.key -out nesys.pfx
|
|
|
|
# Generate Last Certificate and Key
|
|
openssl req -newkey rsa:2048 -nodes -keyout nesica1.key -out nesica1.crt -CA nesys.crt -CAkey nesys.key -subj "/C=JP/ST=A/L=A/CN=nesica1" -addext "subjectAltName = DNS:cert.nesys.jp,DNS:cert3.nesys.jp,DNS:data.nesys.jp,DNS:proxy.nesys.jp,DNS:nesys.taito.co.jp,DNS:fjm170920zero.nesica.net" -days 3650
|
|
|
|
# pfx export
|
|
openssl pkcs12 -passout pass:harasho -export -in nesica1.crt -inkey nesica1.key -out nesica1.pfx
|